Changes

Page history
Apply conversion script to all *.md files. authored by Alexander Hansen Færøy's avatar Alexander Hansen Færøy
Show whitespace changes
Inline Side-by-side
doc/fte/setup.md
View page @ a1a4b621
[https://fteproxy.org/ FTE] is a [wiki:doc/PluggableTransports pluggable transport]. Here's how to configure an “fte” bridge: [FTE](https://fteproxy.org/) is a [pluggable transport](./doc/PluggableTransports). Here's how to configure an “fte” bridge:
[[TOC(noheading)]] [[TOC(noheading)]]
= FTE bridge setup = # FTE bridge setup
For the examples below, our IP address is 203.0.113.1. In practice, replace this with your own address. For the examples below, our IP address is 203.0.113.1. In practice, replace this with your own address.
== Example torrc == ## Example torrc
{{{ ```
DataDirectory /path/to/tor_data # location to store runtime data DataDirectory /path/to/tor_data # location to store runtime data
Log notice file /path/to/tor_log # location to log notices, warnings, and errors Log notice file /path/to/tor_log # location to log notices, warnings, and errors
RunAsDaemon 1 # runs as a background process RunAsDaemon 1 # runs as a background process
...@@ -20,38 +20,38 @@ ContactInfo $EMAILADDRESS # email address in case contacting you is required ...@@ -20,38 +20,38 @@ ContactInfo $EMAILADDRESS # email address in case contacting you is required
Nickname $RELAYNAME # name for this relay Nickname $RELAYNAME # name for this relay
SocksPort 0 # prevents tor from being used as a client SocksPort 0 # prevents tor from being used as a client
ExitPolicy reject *:* # prevents us from connecting to non-relays ExitPolicy reject *:* # prevents us from connecting to non-relays
}}} ```
== Example log output == ## Example log output
{{{ ```
[notice] Registered server transport 'fte' at '0.0.0.0:59003' [notice] Registered server transport 'fte' at '0.0.0.0:59003'
}}} ```
== iptables rules to mirror on 80/443 == ## iptables rules to mirror on 80/443
Mirror on port 80: Mirror on port 80:
{{{ ```
-A PREROUTING -d 203.0.113.1/32 -p tcp -m tcp --dport 80 -j DNAT --to-destination 203.0.113.1:59003 -A PREROUTING -d 203.0.113.1/32 -p tcp -m tcp --dport 80 -j DNAT --to-destination 203.0.113.1:59003
}}} ```
Mirror on port 443: Mirror on port 443:
{{{ ```
-A PREROUTING -d 203.0.113.1/32 -p tcp -m tcp --dport 443 -j DNAT --to-destination 203.0.113.1:59003 -A PREROUTING -d 203.0.113.1/32 -p tcp -m tcp --dport 443 -j DNAT --to-destination 203.0.113.1:59003
}}} ```
== PF rules to mirror on 80/443 == ## PF rules to mirror on 80/443
For this example, our interface is msk0. For this example, our interface is msk0.
Mirror on port 80: Mirror on port 80:
{{{ ```
pass in on msk0 proto tcp from any to 203.0.113.1 port 80 \ pass in on msk0 proto tcp from any to 203.0.113.1 port 80 \
rdr-to 203.0.113.1 port 59003 rdr-to 203.0.113.1 port 59003
}}} ```
Mirror on port 443: Mirror on port 443:
{{{ ```
pass in on msk0 proto tcp from any to 203.0.113.1 port 443 \ pass in on msk0 proto tcp from any to 203.0.113.1 port 443 \
rdr-to 203.0.113.1 port 59003 rdr-to 203.0.113.1 port 59003
}}} ```
== Unpublished bridges == ## Unpublished bridges
If you decide to make your bridge "unpublished", and would like the support team to use your bridge for helping users in heavily restricted regions; please send the bridge address / fingerprint to tor-assistants<AT>lists<DOT>torproject<DOT>org. If you decide to make your bridge "unpublished", and would like the support team to use your bridge for helping users in heavily restricted regions; please send the bridge address / fingerprint to tor-assistants<AT>lists<DOT>torproject<DOT>org.